Privacy Policy

Jump on this page:

Cookie Policy

What are cookies?

This website uses cookies, i.e. small text files that are downloaded to your device in order to improve your user experience while browsing websites. The use of cookies is a common practice on almost all professional websites.

Cookies are completely harmless, they don’t collect any personal data nor they can’t access your files.

Why are cookies used?

Cookies enable better optimization of your visit to a website. They help identify frequent visitors and speed up their visit on the site. Cookies can also collect anonymized and combined information about visits, which the website administrator can use to improve the pages.

What cookies do we use?

We use cookies that are necessary for the technical functions of our site.

Our website also uses analytics services from trusted third parties, such as Google Analytics. It helps us in tracking the number of visits, and understand how our site is used. With the help of this feedback, we can develop the usability of our site and improve its content. We also use Leadfeeder service, through which we get to know the companies that have visited our site. These third-party cookies collect statistical information that we can also use for re-marketing. More information about cookies, as well as the practices and conditions of the third parties in question, can be found on their official websites.

No visitor data is tied to individual users.

Disabling cookies

You can disable the use of cookies in your browser settings. Please note, that disabling cookies affects the functionality of this and many other websites you visit, and may limit some functionality on our website.

Data Protection Statement

This is the Register and Data Protection Statement prepared in accordance with the Finnish Personal Data Law (§10 and 24) and the EU General Data Protection Regulation (GDPR) (May 25, 2018). Updated on June 30, 2022.

1. Keeper of the register

CISS Software Oy (2946402-8)
Laserkatu 6
FI-53850 Lappeenranta
Finland
tel. +358 400 540787

2. Name of the register

Customer register of CISS Software Oy

3. Contact person of the register

Keijo Honkanen
tel. +358 400 540787

4. Legal basis and purpose of personal data processing

According to the EU’s General Data Protection Regulation, our legal basis for processing personal data is the register controller’s legitimate interest (i.e. customer relationship). The purpose of processing personal data is to maintain customer relations, communicate with customers and process orders. No personal data is used for profiling or automated decision-making. Information is collected and processed with the customer’s consent.

5. Information contents of the register

The information we may collect in the register:

  • name
  • company/organization
  • contact information (phone number, email, postal address)
  • information about ordered services and their changes
  • billing information
  • other information related to the customer relationship and ordered services

6. Information storing duration

Personal data is stored for as long as it is needed to implement and maintain the customer relationship or to develop customer service with the customer.

7. Sources of information

Sources for how the information is collected are from the person himself, or from the public registers within the limits allowed by the law (e.g. The Business Information System, www.ytj.fi). The information to be saved in the register is obtained directly from the customer, e.g. by email, phone, from messages sent via website contact forms, via social media services, contracts, customer meetings, and other situations where the customer discloses their information.

8. Regular data transfers and data transfer outside the EU or European Economic Area (EEA)

Information is not disclosed outside the company. Some of the external services or software providers used by the company may store data outside the EU or the European Economic Area.

9. Protection of the register

The information is properly protected with the help of information systems, and care is taken when processing information in the register. The digital data security of the servers containing register data, as well as the physical condition of the equipment are taken care of accordingly. The information in the electronic register is transferred with an SSL-protected connection, and is protected by a firewall, usernames and passwords.

Stored data, server access rights and other security-critical personal data are handled confidentially and only by the employees whose job description it is.

10. Rights of the registered person

Everyone in the register have the right to request a check of the information stored about them in the register, and to demand the correction or deletion of any incorrect or outdated information, if necessary. A person in the register also has the right to “be forgotten”, i.e. to request the removal of personal data about them from the register. In addition, everyone in the register have the rights which are recorded in the EU’s General Data Protection Regulation (GDPR), for example the right to limit the processing of personal data in certain situations.

If a person wants to check their information, a signed, written request must be sent to the contact person of the register. The keeper of the register can, if necessary, ask the person making the check request to prove his identity. The keeper of the register will respond to the requester within the time specified in the EU data protection regulation (usually within approx. one month).